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DETAILED ACTION 

1. Claims 1-5 and 7-25 are pending. 

2. Amendment filed 08/08/2005 with a request for continued 
examination has been received and considered. 

Claim Rejections - 35 USC §103 

3. The following is a quotation of 35 U.S.C. 103(a) which 
forms the basis for all obviousness rejections set forth in this 

Office action: - 

(a) A patent may not be obtained though the invention is not identically 
disclosed or described as set forth in section 102 of this title, if the 
differences between the subject matter sought to be patented and the prior 
art are such that the subject matter as a whole would have been obvious at 
the time the invention was made to a person having ordinary skill in the 
art to which said subject matter pertains. Patentability shall not be 
negatived by the manner in which the invention was made. 

4. Claims 1-5, 7, 11-24 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over Sibert (U.S. 6,832,316), further in view 
of Tello (U.S. 6,463,537), and further in view of Langford (U.S. 
6, 507, 911) . 

As per claim 1, Sibert discloses a method providing 
security for a plurality of data records stored on a computer- 
readable medium within a computing system, wherein said computer 
readable medium additionally stores a first data structure, 
starting at a first location within said computer readable 
medium, locating data records in said plurality thereof, said 
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method a' decryption subroutine executed as said computing system 
is being initialized, said decryption subroutine includes 
determining that electrical power has been turned on in said 
computing system, reading said encrypted version of said first 
data structure from said nonvolatile storage, decrypting said 
encrypted version of said first data structure to form said 
first data structure (see column 6 lines 55-67) and a method for 
encrypting (see column 5 lines 41-67). 

Sibert fails to disclose the encryption subroutine includes 
receiving a request to shut down said computing system, reading 
said first data structure from said computer readable medium, 
encrypting said first data structure to produce an encrypted 
version of said first data structure, using a public key 
encryption scheme and the encryption being done to prevent 
reading information stored in data records when the medium is 
removed from the system. 

However, Tello teaches performing tasks at shut down (see 
column 14 lines 1-41) and public key encryption (see column 8 
lines 34-40) and the encryption being done to prevent reading 
information stored in data records when the medium is removed 
from the system (see column 4 line 38 through column 5 line 14). 
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At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to perform Sibert's method 
of encryption at shut down as taught by Tello. 

Motivation to do so would have been to hide data storage 
devices (see Tello column 14 lines 1-41). 

The modified Sibert and Tello system fails to disclose, as 
a part of the encryption method, deleting said first data 
structure from said computer readable medium, and storing said 
encrypted version of said first data structure in nonvolatile 
storage, starting at a second location within said nonvolatile 
storage, and, as a part of the decryption method, writing said 
data structure to said computer readable medium, starting at 
said first location. 

However, Langford teaches such a replacement method (see 
column 4 line 63 through column 5 line 18). 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to use Langford' s method 
of overwriting in the modified Sibert and Tello system. 

Motivation to do so would have been to allow no plaintext 
of the original data to be present (see Langford column 5 lines 
1-18) . 

As per claims 2-3, the modified Sibert, Tello and Langford 
system discloses the second location is at the first location on 
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the readable medium (see Langford column 4 line 63 through 
column 5 line 18) . 

As per claim 4, the modified Sibert, Tello and Langford 
system discloses the nonvolatile storage is a memory structure, 
separate from said computer readable medium, with said computing 
system (see Sibert column 6 lines 55-67). 

As per claim 5, the modified Sibert, Tello and Langford 
system discloses encryption of said first data structure occurs 
within a cryptographic processor in said computing system using 
an encryption key, said cryptographic processor is separate from 
a system processor within said computing system, and decryption 
of said encrypted version of said first data structure occurs 
within said cryptographic processor in said computing system 
using a decryption key generated from data stored in secure 
storage accessed by said cryptographic processor (see Sibert 
column 5 lines 49-56 and column 6 lines 61-67 where the 
"cryptographic circuitry" is the processor) . 

As per claim 7, the modified Sibert, Tello and Langford 
system discloses the encrypted version of said first data 
structure is equal in length to said first data structure (see 
Langford column 4 line 62 through column 5 line 18) . 

As per claims 11-12, the modified Sibert, Tello and 
Langford system discloses said method additionally comprises a 
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configuration subroutine providing a user interface for setting 
and resetting a configuration bit, and said encryption 
subroutine is executed according to a state of said 
configuration bit and said encryption subroutine additionally 
includes setting a flag bit in non-volatile storage, and said 
decryption subroutine is executed only when said flag bit is set 
(see Tello column 14 lines 34-40 where it is inherent that a bit 
is set for encryption and decryption should only happen for 
encrypted data) . 

As per claims 13 and 19, the modified Sibert, Tello and 
Langford system discloses a method providing security for a 
plurality of data records stored on a computer readable medium 
within a computing system, wherein said computer medium 
additionally stores a first data structure starting at a first 
location within said removable computer readable medium, 
locating data records in said plurality thereof, said method 
comprises an encryption subroutine executed to encrypt said 
first data structure and a decryption subroutine subsequently 
executed to decrypt an encrypted version of said first data 
structure, said encryption subroutine includes reading said 
first data structure from said computer readable medium, 
encrypting said first data structure within a cryptographic 
processor in said computing system using an encryption key to 
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produce an encrypted version of said first data structure, 
deleting said first data structure from said computer readable 
medium, and storing said encrypted version of said first data 
structure in nonvolatile storage, starting at a second location 
within said nonvolatile storage, and said decryption subroutine 
includes reading said encrypted version of said first, data 
structure from said nonvolatile storage, decrypting said 
encrypted version of said first data structure within said 
cryptographic processor in said computing system using a 
decryption key generated from data stored in secure storage 
accessed by said cryptographic processor to form said first data 
structure, and writing said data structure to said computer 
readable medium, starting at said first location (see rejection 
of claim 5) with the prevention of reading records when the 
medium is removed from the system (see Tello as applied to claim 
1) . 

Claims 14-16 and 20-22 are rejected as in claims 1, 11-12 
respectively. 

As per claims 17-18 and 23-24, the modified Sibert, Tello 
and Langford system discloses a cryptographic selection 
subroutine providing a graphical user interlace, said 
cryptographic selection subroutine includes displaying a choice 
between encryption and decryption, displaying representations of 
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computer readable medium in said computing system, and receiving 
a cryptographic selection signal indicative of whether 
encryption or decryption is to occur and of a chosen computer 
readable medium, said encryption subroutine is executed in 
response to receiving cryptographic selection signal indicating 
encryption is to occur, with said first data structure of said 
chosen computer readable medium being encrypted, and said 
decryption subroutine is executed in response to receiving a 
cryptographic selection signal indicating decryption is to 
occur, and with said encrypted version of said first data 
structure of said chosen computer readable medium being 
decrypted wherein said encrypted version of said first data 
structure is stored in nonvolatile storage on said chosen 
computer readable medium (see Langford column 6 lines 52-67 for 
the GUI and the encryption/decryption and hard drives as in 
Tello and Sibert applied to previous claims) . 

1. Claims 8-9 and 25 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over the modified Sibert, Tello and Langford 
system as applied to claims 1 and 19 above, and further in view 
of Robinson et al (U.S. 5,544,356). 

As per claims 8-9 and 25, the modified Sibert, Tello and 
Langford system fails to disclose the computer readable medium 
additionally stores a second data structure, starting at a 
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second location within said computer readable medium, describing 
characteristics of said first data structure, and said 
encryption subroutine additionally includes reading said second 
data structure to determine characteristics of said first data 
structure wherein said first data structure is a file allocation 
table, and said second data structure is a boot record. 

However, Robinson et al teaches a boot record describing 
the file allocation table (see column 1 line 64 through column 2 
line 4 ) . 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to use the modified 
Sibert, Tello and Langford system to encrypt Robinson et al's 
file allocation table. 

Motivation to do so would have been that the boot record 
includes the number of copies of the file allocation table (see 
Robinson et al column 1 line 64 through column 2 line 4) . 
5. Claims 8, 10 and 25 are rejected under 35 U.S.C. 103(a) as 
being unpatentable over the modified Sibert, Tello and Langford 
system as applied to claims 1 and 19 above, and further in view 
of Starek et al (U.S. 6,070,174). 

As per claims 8, 10 and 25, the modified Sibert, Tello and 
Langford system fails to disclose the computer readable medium 
additionally stores a second data structure, starting at a 



Application/Control Number: 09/919,240 Page 10 

Art Unit: 2137 

second location within said computer readable medium, describing 
characteristics of said first data structure, and said 
encryption subroutine additionally includes reading said second 
data structure to determine characteristics of said first data 
structure wherein said first data structure includes an array of 
file records in a master file table of a NTFS file, and said 
second data structure includes metafile data in said master file 
table . 

However, Starek et al teaches such data structures (see 
column 10 lines 29-51) . 

At the time of the invention it, would have been obvious to 
a person of ordinary skill in the art to use the modified 
Sibert, Tello and Langford system to encrypt Starek et al's file 
array . 

Motivation to do so would have been that the metafile 
describe the file system structure (see column 10 lines 29-51) . 

6. Claims 1-5 and 7-25 are rejected as above but in view of 
JP2001202167A, which discloses a control method for a computer, 
involves encrypting and decoding data on memory based on power 
supply ON/OFF. 
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Response to Arguments 

Applicant's arguments filed 08/08/2005 have been fully 
considered but they are not persuasive. Applicant argues: Sibert 
and Tello fail to disclose the use of public key encryption and 
encrypting to prevent reading information stored in data records 
when the medium is removed from the system. However Tello 
discloses the use of public key encryption (see column 8 lines 
34-40) and the encryption being done to prevent reading 
information stored in data records when the medium is removed 
from the system (see column 4 line 38 through column 5 line 14). 



Conclusion 

Any inquiry concerning this communication or earlier 
communications from the examiner should be directed to Michael 
Pyzocha whose telephone number is (571) 272-3875. The examiner 
can normally be reached on 7:00am - 4:30pm first Fridays of the 
bi-week off. 

If attempts to reach the examiner by telephone are 
unsuccessful, the examiner's supervisor, Emmanuel Moise can be 
reached on (571) 272-3865. The fax phone number for the 
organization where this application or proceeding is assigned is 
703-872-9306. 
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Information regarding the status of an application may be 
obtained from the Patent Application Information Retrieval 
(PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, 
see http://pair-direct.uspto.gov. Should you have questions on 
access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free) . 



MJP 



